sha256 worked. (both for dgst and for req) If i understand correctly, ECDSA algorithm only needs hash as a defined length bitstring, so adapting ripemd in place of sha1 should have been easier than sha256 (because ripemd has the same length as sha1, sha256 is longer). Citējot *Dr. Stephen Henson <st...@openssl.org> [1]*: > On Sat, Jul 16, 2011, y...@inbox.lv wrote: > > > > > openssl dgst -ripemd160 -sign ec5_ca.key shr.o.txt > > WARNING: can't open config file: /usr/local/ssl/openssl.cnf > > Error setting context > > 5664:error:100C508A:elliptic curve > routines:PKEY_EC_CTRL:invalid > > digest type:.c > > ryptoecec_pmeth.c:229: > > AFAIK there is no standard for using ECC with ripemd160. OpenSSL > supports SHA1 > and SHA2 algorithms with ECC. So if you used -sha256 it should > work. > > Steve. > -- > Dr Stephen N. Henson. OpenSSL project core developer. > Commercial tech support now available see: http://www.openssl.org > ______________________________________________________________________ > OpenSSL Project > http://www.openssl.org > User Support Mailing List > openssl-users@openssl.org > Automated List Manager > majord...@openssl.org -- Tavs bezmaksas pasts Inbox.lv
Links: ------ [1] mailto:st...@openssl.org